WKD Checker

Stefan Claas spam.trap.mailing.lists at gmail.com
Mon Jan 18 17:12:56 CET 2021

On Mon, Jan 18, 2021 at 8:43 AM Neal H. Walfield <neal at walfield.org> wrote:
> On Sun, 17 Jan 2021 19:27:05 +0100,
> Ángel wrote:
> > I feel there is a need for a proper wkd test suite (as well as a
> > clarifying on the draft itself the things that are coming up).
> FWIW, there is Wiktor Kwapisiewicz's wkd checker:
>   https://gitlab.com/wiktor-k/wkd-checker
>   https://wkd.sequoia-pgp.org/
> This is more for checking a WKD setup than checking a WKD client.
> I'm sure he'd be open to issues for things that he missed.
> :) Neal

Hi Neal,

thanks for chiming in here again, which you normally have not to
do and instead you could enjoy popcorn while reading this thread. :-)

I like to leave this reply here as my last post, while I know this
Mailing List is thankfully mirrored ... and links to this whole thread
are also floating around in the Internet, in related forums.

I repeat here once again GitHub has a *valid* SSL cert.

If GnuPG and gpg4win can not handle properly the
direct-method, e.g. a fallback if *for* GnuPG or gpg4win
a certificate is 'ìnvalid' and sequoia-pgp, Mailvelope etc.
can use the direct-method than it should tell us something.

As understood Damien jumped in yesterday to explain why
some JavaScript kiddies asked for a sub.sub openpgpkey
domain support (Remember the *EU funded* openpgp.js)
library used in Mailvelope can handle my github.io key.

Let's also assume that Werner, in his ivory tower, 'protected'
by the *Old* Guard is correct and I am now officially known
as retard, or whatever people like to call me, GitHub would
make changes to their IT infrastructure, so that according
to a *draft* GnuPG and gpg4win can handle this, what happens
if I invent tomorrow WKD for S/MIME and WKD for NaClbox
according to Werner's current *draft*, because many people
would like it. Should GitHub do then changes *again*?

Neal, maybe you and your team, as professionals, can explain
what the .well-kown folder in a Web root is good for, because
it is not only used for WKD and it is also used by many many
apps, for verification purposes, like one can see in my GitHub
project folder, regarding Brave verification and one can see
that a .well-known folder serves it's purpose for the direct
method if one tries Wictor's fine WKD checker with

I finish now and I am very thankful that you jumped in for
clarification, which you should had not to do and also thanks
do dkg for suggesting clarification on dev.gnupg.org.

Best regards

More information about the Gnupg-users mailing list